Age | Commit message (Expand) | Author |
2023-04-17 | Oops, ramdisk case should be -fcf-protection=none | Theo de Raadt |
2023-04-17 | Enable Indirect Branch Tracking (IBT) for the kernel | Jonathan Gray |
2023-04-17 | For future userland IBT, the sigcode needs to start with a endbr64. | Theo de Raadt |
2023-04-17 | The bootblocks are 32-bit binaries which use the ENTRY() macros which now | Theo de Raadt |
2023-04-17 | IDTVEC_NOALIGN() was the incorrect way to create a label in two places, | Theo de Raadt |
2023-04-17 | Add endbr64 instructions to most of the ENTRY() macros. | Theo de Raadt |
2023-04-16 | compile regular kernels with -fcf-protection=branch, and ramdisks with | Theo de Raadt |
2023-04-16 | call default db_ktrap() with tf_err, not 0 for exception error code | Jonathan Gray |
2023-04-16 | Handle T_CP traps from userland by generating SIGILL, with | Philip Guenther |
2023-04-16 | Both trap 21 (T_CP) and trap 17 (T_ALIGNFLT) supply an error code | Philip Guenther |
2023-04-16 | vmm(4): save and restore Intel CET state on vm entry/exit. | Dave Voutila |
2023-04-15 | change trap16 from IDTVEC_NOALIGN to IDTVEC as it is now the first | Jonathan Gray |
2023-04-15 | add endbr defines and control protection trap | Jonathan Gray |
2023-04-14 | vmm: NENTRY -> ENTRY | Dave Voutila |
2023-04-14 | vmm(4): add NENTRY/END macros around asm functions. | Dave Voutila |
2023-04-14 | add VMX/VMCS defines for amd64 endbr64 features | Dave Voutila |
2023-04-13 | pmap_copy() has never, ever, been implemented in any of the platforms OpenBSD | Miod Vallat |
2023-04-11 | fix double words in comments | Jonathan Gray |
2023-04-10 | spelling | Jonathan Gray |
2023-04-02 | nable ngbe(4) on install media. Passes 'make release' build. | Kevin Lo |
2023-03-31 | Enable ngbe(4). | Kevin Lo |
2023-03-26 | amd64: identify IBT capability in cpu(4) dmesg lines | Mike Larkin |
2023-03-19 | Aggressively randomize the location of the stack on all 64-bit architectures | Mark Kettenis |
2023-03-15 | store bios version, needed for amdgpu Steam Deck quirk | Jonathan Gray |
2023-03-09 | workaround Intel Braswell/Cherry Trail mwait hang | Jonathan Gray |
2023-03-08 | amd64: lapic_timer_rearm: don't reset mode, mask, divisor | Scott Soule Cheloha |
2023-03-06 | In iskmemdev(), do not check for the minor of /dev/io. It has been | Miod Vallat |
2023-02-23 | Remove dangerous user-settable "addr" variable from MI boot loader, and | Miod Vallat |
2023-02-11 | __syscall() is no longer neccessary since the system calls which needed | Theo de Raadt |
2023-02-04 | timecounting: remove incomplete PPS support | Scott Soule Cheloha |
2023-01-31 | amd64: lapic_timer_trigger: disable interrupts while configuring timer | Scott Soule Cheloha |
2023-01-31 | On systems without xonly mmu hardware-enforcement, we can still mitigate | Theo de Raadt |
2023-01-30 | vmm(4): expose PKU cpuid bit if in use on host. | Dave Voutila |
2023-01-30 | part of a future diff snuck into the previous commit | Theo de Raadt |
2023-01-30 | vmm(4): save and restore guest pkru. | Dave Voutila |
2023-01-30 | We have determined that enough HV have correct PKU handling now, | Theo de Raadt |
2023-01-29 | sign another typo | Theo de Raadt |
2023-01-28 | Move some header definitions from vmm(4) to vmd(8). | Dave Voutila |
2023-01-28 | typo in comment | Theo de Raadt |
2023-01-20 | On cpu with the PKU feature, prot=PROT_EXEC pages now create pte which | Theo de Raadt |
2023-01-19 | Revise implementation of pmap_protect(9) in preparation for execute-only | Mark Kettenis |
2023-01-19 | Restrict vmm(4) exposed cpuid extended feature flags. | Dave Voutila |
2023-01-18 | change BIOSF_SMBIOS bit flag from 6 to 8 | Jonathan Gray |
2023-01-17 | Simplify and clarify the implementation of the pmap_page_protect(9) API. | Mark Kettenis |
2023-01-17 | On amd64 machines without the NX feature enabled, we can't distinguish | Mark Kettenis |
2023-01-16 | we spent far too long debugging a weird go library problem (incorrect | Theo de Raadt |
2023-01-16 | export PGK_VALUE so that .S files can use it | Theo de Raadt |
2023-01-16 | 3 new defines: he PTE protection key mask, the specific key value we use | Theo de Raadt |
2023-01-14 | Implement access to EFI variables and ESRT through an ioctl(2) interface | Mark Kettenis |
2023-01-14 | add protection-key violation error code for page-fault exceptions | Jonathan Gray |